CVE-2023-32229: Due to an error in the software interface to the secure element chip on Bosch IP cameras of family CPP13 and CPP14, the chip can be permanently...

4.9 CVSS

Description

Due to an error in the software interface to the secure element chip on Bosch IP cameras of family CPP13 and CPP14, the chip can be permanently damaged when enabling the Stream security option (signing of the video stream) with option MD5, SHA-1 or SHA-256.

Classification

CVE ID: CVE-2023-32229

CVSS Base Severity: MEDIUM

CVSS Base Score: 4.9

Affected Products

Vendor: Bosch

Product: Camera Firmware

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.09% (probability of being exploited)

EPSS Percentile: 38.28% (scored less or equal to compared to others)

EPSS Date: 2025-02-04 (when was this score calculated)

References

https://psirt.bosch.com/security-advisories/BOSCH-SA-435698-BT.html

Timeline

2024-12-13 00:30:25 UTC
CVE

Due to an error in the software interface to the secure element chip on Bosch IP cameras of family CPP13 and CPP14, the chip can be permanently...